$ rpki-client -vvf rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/469C2676D76111EB97EB721DC4F9AE02.roa File: 469C2676D76111EB97EB721DC4F9AE02.roa (raw, json) Hash identifier: OTs+qw3AvV3H1ENDQyiXHEhtKPRt4PABgjp0FWH4nzU= Subject key identifier: E3:E9:D9:4A:74:C2:B9:28:34:BF:FD:A7:3E:DC:54:72:77:54:79:DE Certificate issuer: /CN=A91D008B/serialNumber=C82D4623B79DC5A040072C112A1BABEB4416041C Certificate serial: 059C Authority key identifier: C8:2D:46:23:B7:9D:C5:A0:40:07:2C:11:2A:1B:AB:EB:44:16:04:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/469C2676D76111EB97EB721DC4F9AE02.roa Signing time: Tue 01 Jul 2025 00:03:08 +0000 ROA not before: Tue 01 Jul 2025 00:03:08 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 142407 IP address blocks: 103.168.8.0/24 maxlen: 24 103.168.9.0/24 maxlen: 24 2407:7ac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.crl rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:29:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1436 (0x59c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D008B, serialNumber=C82D4623B79DC5A040072C112A1BABEB4416041C Validity Not Before: Jul 1 00:03:08 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686325bb-2256 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8c:89:a4:51:6f:d6:8d:81:58:e3:f1:33:c4: a1:f8:d6:82:71:82:1b:65:35:96:53:2f:ee:65:57: b7:31:e8:8c:3d:ad:e4:2c:73:8c:45:9a:94:7e:19: 7e:be:5b:d4:47:29:a2:54:1e:1c:9f:4b:9d:db:1d: da:38:d0:1e:73:4e:8d:79:4d:bb:7e:9f:51:dd:a0: 44:b2:cb:a8:a3:44:17:40:8d:57:3d:4a:b0:bc:26: 9d:22:8b:e8:cb:db:86:64:83:71:96:18:71:d2:6e: 23:61:93:10:5e:ad:a8:a3:d5:c8:52:f8:43:93:d7: 3d:a7:ed:3c:98:4b:b8:22:37:3b:31:27:5a:f3:18: ea:71:75:be:2a:45:68:23:6e:f6:1d:5b:2b:61:ec: 52:c7:a0:c2:2e:42:b7:56:d8:62:f8:4d:6f:81:cf: 6b:0a:a9:e9:13:0b:62:f0:54:5f:cf:b6:de:f6:9e: d9:08:74:08:76:13:a6:1a:f7:f1:af:e7:2e:05:e6: b5:d4:52:a5:dd:7b:64:0b:da:e3:04:d5:01:c0:aa: 34:12:cc:33:9d:9c:cc:3d:39:c8:4c:23:cd:13:6b: f4:49:03:e5:27:f1:ee:ec:3d:c1:5d:e0:34:2d:24: 5b:01:14:9b:63:df:3f:e6:ab:7e:87:94:1d:ca:63: ed:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:E9:D9:4A:74:C2:B9:28:34:BF:FD:A7:3E:DC:54:72:77:54:79:DE X509v3 Authority Key Identifier: keyid:C8:2D:46:23:B7:9D:C5:A0:40:07:2C:11:2A:1B:AB:EB:44:16:04:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/469C2676D76111EB97EB721DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.8.0/23 IPv6: 2407:7ac0::/32 Signature Algorithm: sha256WithRSAEncryption 3a:df:fa:0d:95:66:6e:70:df:4e:69:02:96:27:79:27:0f:cc: 6a:6f:59:db:f8:17:79:2d:d2:94:f5:16:b6:8b:2d:a8:0d:62: a2:bd:16:50:3e:83:99:f8:7e:8a:df:03:9a:87:5d:38:e8:37: 68:9c:80:54:0d:24:83:f2:8a:4b:fa:1d:c7:77:9e:03:bd:7d: ca:76:b4:d0:ed:83:49:ed:ed:92:3f:7b:c1:f9:a9:c8:87:98: 00:14:c8:cf:8b:04:2a:82:fa:95:91:0c:0e:e6:fb:25:f9:ac: 4f:c4:3a:c5:9b:f0:92:ac:f6:f8:f8:df:4f:91:71:0c:61:07: b8:7d:b6:64:37:79:98:15:ee:a1:7d:69:e6:02:66:08:b9:a4: b3:f1:0f:39:5b:0c:71:59:be:0f:d6:a6:f9:d7:f9:03:ec:1f: d2:c8:48:ec:0c:4e:67:f5:80:f6:a7:36:59:9e:e9:c3:54:22: dc:8c:a4:3d:37:a8:d1:ab:51:50:a8:8b:b9:dd:94:08:bd:97: 2d:43:a1:00:96:62:6b:54:8a:46:88:09:62:1f:06:bd:4c:78: 04:22:a7:95:19:c7:76:04:5c:9a:3a:db:4e:80:a5:b8:d2:eb: 1c:d5:5b:e3:25:9a:15:c0:25:92:35:ed:cf:3d:0c:9a:30:dc: 0b:f2:36:c1 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAwOEIxMTAvBgNVBAUTKEM4MkQ0NjIzQjc5REM1QTA0MDA3MkMxMTJBMUJBQkVC NDQxNjA0MUMwHhcNMjUwNzAxMDAwMzA4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzMjViYi0yMjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoyJpFFv1o2BWOPxM8Sh+NaCcYIbZTWWUy/uZVe3MeiMPa3kLHOMRZqUfhl+ vlvURymiVB4cn0ud2x3aONAec06NeU27fp9R3aBEssuoo0QXQI1XPUqwvCadIovo y9uGZINxlhhx0m4jYZMQXq2oo9XIUvhDk9c9p+08mEu4Ijc7MSda8xjqcXW+KkVo I272HVsrYexSx6DCLkK3Vthi+E1vgc9rCqnpEwti8FRfz7be9p7ZCHQIdhOmGvfx r+cuBea11FKl3XtkC9rjBNUBwKo0EswznZzMPTnITCPNE2v0SQPlJ/Hu7D3BXeA0 LSRbARSbY98/5qt+h5QdymPtLQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOPp2Up0 wrkoNL/9pz7cVHJ3VHneMB8GA1UdIwQYMBaAFMgtRiO3ncWgQAcsESobq+tEFgQc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDA4Qi80OUU2MjcxNkQ3 NUYxMUVCOUJEMjRCMURDNEY5QUUwMi95QzFHSTdlZHhhQkFCeXdSS2h1cjYwUVdC QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDMUdJN2VkeGFCQUJ5d1JLaHVyNjBRV0JCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDAwOEIvNDlFNjI3MTZENzVGMTFFQjlCRDI0QjFEQzRGOUFFMDIvNDY5QzI2NzZE NzYxMTFFQjk3RUI3MjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnqAgwDQQCAAIwBwMFACQHesAwDQYJKoZIhvcNAQELBQAD ggEBADrf+g2VZm5w305pApYneScPzGpvWdv4F3kt0pT1FraLLagNYqK9FlA+g5n4 forfA5qHXTjoN2icgFQNJIPyikv6Hcd3ngO9fcp2tNDtg0nt7ZI/e8H5qciHmAAU yM+LBCqC+pWRDA7m+yX5rE/EOsWb8JKs9vj430+RcQxhB7h9tmQ3eZgV7qF9aeYC Zgi5pLPxDzlbDHFZvg/WpvnX+QPsH9LISOwMTmf1gPanNlme6cNUItyMpD03qNGr UVCoi7ndlAi9ly1DoQCWYmtUikaICWIfBr1MeAQip5UZx3YEXJo6206ApbjS6xzV W+MlmhXAJZI17c89DJow3AvyNsE= -----END CERTIFICATE-----Generated at Fri Jul 4 21:37:14 2025 by rpki-client